I'd also reccomened setting up internal DNS (split horrizon DNS) to prevent hairpinning, so even if the external DNS record is incorrect, the traffic should directly to your NPM instance or what is accepting the traffic.

Really awesome videos! Love your channel. You make a bunch of content I never heard of so very great to see content like this over the normal docker containers and environments I'm normal to use to seeing.

It's Always DNS :)

I think most of us subscribers are tech DIY'ers, and can empathize with an "outage event" such as what you described. You mentioned my personal _Trigger:_ *Documentation!* IMO, proper documentation of an adhoc system (opensource based environments are all adhoc) should include a graphic diagram of every component within the system, a 5th-grade level Re-installation manual detailing every step to recover the system, and some method to remind us to update this documentation EVERYTIME we touch (make any changes - regardless of how seemingly insignificant) the system. Failover/Redundancy devices for critical components should also be considered. Is there any opensource application you can recommend that addresses Documentation?

This is great! Definitely gonna have a think about this. Also, I heard "Digital lotion" and got a giggle.

My DR testing consists of 2 home routers of identical make/model, identically configured and rotated-out on a monthly basis. I've been following this practice with 2 x N100 mini PCs running OPNSense ever since the lockdowns. In addition to network documentation and cable labels, I also routinely download and save the config files for all my switches and WAPs.

I would be interested in what information you document. I try to but have been inconsistent with the information I document.

Dude from one home labber to another, it happens. At least you are back up and you learn it from it.

Thanks for the video, i love these types of videos where you explain your troubles and solutions to it. i had this same issue where my network caused my homelab to be a shit show. Took my time setting up my network and now i am glad i did that.

after going through this stress once, said never again :) after that i purchased two old £75 used business pc's, a $15 intel dual pcie nic card, and put proxmox on both i then put the nic into one of them, virtualized pfsense onto it (could do virtualized openwrt too i suppose) and used it as my main router the pfsense vm gets backed nighty to a network share, and the second proxmox pc has access to this share as well main ones dies/corrupts .... take's only min's to swap over the nic, restore the last pfsense vm backup, swap over the cables, and your done, happy days are here again :) works a treat for homelab setups ps i fire up the spare proxmox now and again to make sure both are at the same update level

Greetings new editor, Plz keep this gentleman on toes has tendency to get carried away in Zen 🙈.

It's probably a dynamic IP anyway, but FYI you have an actual public IP showing 11:40 ish or so.

All the best to you and yours in 2025. Looking forward to another 12 months of awesome content

Thx for the great video & sharing your passion for cool Open Source software with us :-) You should upgrade your Netbird management instance. Network routes are deprecated now & you should use Networks instead :-)

Is the original netbird ingress on the lan? on your home network?

I knew once you said the Wallmart routers didn't support OpenWRT that they were TP-Links. I know they are cheap, but I wish people would stop buying them.

that bad luck as walmart near me for the last month switched most of his router to the last tplink including the be9300 and some netgear.

I've been watching your videos for a long time. I'm amazed at what you've already achieved. Keep up the good work. I'd be interested to know how your network is set up. And what about the traffic, which will probably run via the external server, right? By the way, which TP-Link router are you using? I have the ER605 and have flashed OpenWRT there. Oh what do you think about headscale instead about netbird ? Greetings from Germany.

Any chance a poe wire got plugged into the wrong port?

I used wireguard install script on a vps to avoid overcomplicating everything and connecting my homelab up to instances on my proxmox then the vps acts as the front door. Works a dream and 0 costs.

Excellent video, appreciate the transparency.

If I ever want to have public facing stuff from my own network I'd probably do it similar way but for the moment I just want to keep my LAN ja public network away from each other and just VPN in using netbird or similar. I have also other ways to get in if first option fails though.

Could you please do a follow up on how to properly document your network?

Maybe you could use duckDNS as an open source dynamic dns solution to work around the changing public IP issue.

Yeah, I think I’m just gonna bite the bullet and go netbird, thanks for the push :)

I'm actually using Netbird successfully at a fairly complex setup for a client... I only have to enter some of the Netbird IP's in the hosts file in some of the windows computers,

haha Tis the season I guess. My homelab did the same thing to me last week. I spent that same half a day chasing my tail 😆😆

Happy new year to you 🎉 your content is always appreciated and amazing.

Yeah I know how it feels, man Good advice, thanks for sharing HNY by the way

Damn, I use netbird as well but I never thought about having my reverse proxy point to netbird. I may have to change up my network

Your awesome. Love learning new things and ideas

Why would you purchase a consumer grade POS? Never long security updates, poor security, and limited on speed due to cheap chips.

What about Netmaker? I thought you liked and used that.

Netbird in two virtual servers at two different noc vendor as access in ha setup

Hi I don't know how DM you, but your vaultwarden key leaked in the vidéo. You should replace it quickly.

opnsense on old computer with wifi pcie card

First ! Happy and Healty 2025

If VPS gets compromised will that be security threat to your network netwok?

Meh